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INTERNET-ENABLED SERVICE 
MANAGEMENT SYSTEM AND METHOD 

FIELD OF THE INVENTION 

This invention relates to service management of digital 
communications networks and, in particular, to the manage- 
ment of communications services from a service provider by 
a customer of the provider. 

BACKGROUND OF THE INVENTION 

A network management system (NMS) provides opera- 
tors with a full range of configuration capabilities on multi- 
technology communications networks, as represented in 
FIG. 1. The NMS may be used to configure the network, 
manage links and paths, monitor network operations and 
resolve problems from a central location. For example, 
traffic and service parameters on Frame Relay, ATM, X.25, 
SONET/SDH and ISDN links and paths can be configured 
at the NMS, typically through a point-and-click graphical 
user interface (GUI). End-to-end connections through the 
network can be established by simply clicking on endpoints 
depicted on the GUI. Network reliability is ensured through 
automatic rerouting and restoration functions of the NMS. 

Conventional NMSs, such as the MainStreetXpress 
(trademark) 46020 from Newbridge Networks Corporation, 
include functionality to partition communications network 
resources whereby a service provider can resell bandwidth 
and services to customers, and effectively manage the 
resources, customers and operations personnel. A network 
can be partitioned, for example, to divide it by region or 
department, or to provide Virtual Private Networks (VPNs) 
for multiple customers. Two of the types of VPNs are a 
virtual backbone network (VBN) or a virtual service net- 
work (VSN). For sophisticated partitioning applications, it is 
possible to subdivide a customer's VBN into multiple VSNs. 

A VBN partition is a physical partition of network 
resources. This form of a partition contains bandwidth 
dedicated to that partition only, and is characterized on the 
NMS by a physical view of the network equipment and 
bandwidth. The resources in a single VBN may be shared, 
permitting customers to interact with the network as if it 
were their own private backbone network. 

VSN partitioning provides a more service oriented view 
of the network, characterized on the NMS by the subscribed 
services and the access points in and out of the network for 
a particular customer. This form of a partition contains 
pathend equipment only. Bandwidth is drawn from the 
* parent' partition which may be a VBN or the 'supply' 
network (i.e., the service provider's physical network). 

From large corporate customers supporting mission- 
critical business applications, to small business clients sell- 
ing products worldwide, service provider subscribers are 
demanding increased visibility and control of their sub- 
scribed communications services. Whether they are looking 
for end-to-end visibility across the corporate-wide network, 
or service performance information, customers want to 
ensure their network is cost-effective and responsive to 
rapidly changing needs. For service providers, meeting this 
requirement creates an opportunity for service differentia- 
tion and competitive advantage. 

The demand for customer service management (CSM) 
features is being driven in large part-by the growth in 
outsourcing of bandwidth by enterprise managers, value- 
added communications resellers, and other telecommunica- 
tions subscribers. Most service providers are looking for 
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customer network management (CNM) solutions to meet 
these needs — solutions that typically extend network status 
and performance information to subscribers. 

s SUMMARY OF THE INVENTION 

The CSM Service Director (SD), embodied by the present 
invention, makes it possible for service providers to offer 
their customers the ability to monitor and manage their 
outsourced network resources in much the same way as they 
10 manage their in-house resources, giving them control of 
their VPNs. 

The information provided by the CSM SD reflects the 
view the service provider wants to extend to its customer. In 
most cases, this will mean that customers are given the 
15 ability to view their network endpoints and the status of the 
associated connections. Details of the network, in terms of 
network equipment and the routing of the connections, are 
transparent to the customer. Instead the customer sees access 
points and connections between these access points. 

20 

The SD introduces a Web-based presentation environment 
and a number of valuable CSM applications that can be 
accessed via the Web medium. The CSM Service Director 
brings the flexibility and manageability of Web browser and 
Internet/Intranet technologies to the CSM services offered 
by traditional NMSs. It works with the industry standard 
Web browsers, Netscape Navigator and Microsoft Internet 
Explorer. The CSM Service Director extends the CSM 
market beyond large corporate customers to include medium 
rt and small business subscribers. 

30 

BRIEF DESCRIPTION OF THE DRAWINGS 

The invention will now be described in greater detail with 
reference to the attached drawings wherein: 
35 FIG. 1 is a high level diagram of a system for providing 
CSM services via a multi-technology network; 

FIG. 2 illustrates the CSM services system according to 
the present invention; 

FIG. 3 is a diagram showing the make up of the HTML- 
40 CGI based software architecture; 

FIG. 4 depicts information flow between client and server 
in the multiple login process; 

FIG. 5 is a flow diagram illustrating the multiple login 
process of FIG. 4; 

FIG. 6 is a flow diagram showing a log out process; 

FIG. 7 illustrates a dashboard frame in a CSM Service 
Director application; 

FIG. 8 shows a representation of an online context sen- 
50 sitive help frame; 

FIG. 9 is a flow diagram of an online context sensitive 
help process; 

FIG. 10 illustrates a third party application configuration 
screen; 

55 FIG. 11 represents third party application dual screen on 

an end-user's browser window; 

FIG. 12 is a flow diagram for a configurable third party 

Internet application integration; 
6Q FIG. 13 illustrates an internal user's welcome context 

frame; 

FIG. 14 illustrates an external user's welcome context 
frame; 

FIG. 15 is a flow diagram for context switching to a 
65 customer's account; and 

FIG. 16 is a flow diagram for the backup procedure in a 
shared memory application. 
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DETAILED DESCRIPTION OF THE 
INVENTION 

As shown in FIG. 1 the system of the present invention 
relates to a network whereby a service provider offers a 
customer a variety of resources and services via a virtual 
private network (VPN). A network management system 
allows an operator to configure the network in accordance 
with specific requirements. 

FIG. 2 is a high level view of the system according to the 
invention. The NMS is used to configure the network as 
shown in FIG. 1. The customer service management (CSM) 
system includes a service director (SD) and a CSM agent. In 
the following discussion the term CSM Agent is meant to 
include a Newbridge Networks product known as CSM 
Agents. The CSM Agent server stores SNMP Community 
String (which is equivalent to a CSM Service Director 
Customer or a Newbridge 46020 VSN), network configu- 
ration and network statistical information in a data reposi- 
tory which is implemented using a typical relational 
database, such as an Informix database, on the CSM Agent. 
The information maintained therein is received from the 
NMS which communicates with the CSM Agent, for 
example, through the well-known Simple Network Manage- 
ment Protocol (SNMP). The NMS may be any commercially 
available product that supports SNMP and virtual network 
partitioning for respective customers, an example of which 
being the MainStreetXpress 46020 Network Manager by 
Newbridge Networks Corporation. 

The CSM Service Director (SD) server accesses the 
database maintained by the CSM Agent using structured 
query language (SQL) which is the standard method of 
accessing relational databases. End-users employing 
browser clients interact with the CSM Service Director (SD) 
server via world wide web (WWW) based communications, 
whereby the SD server receives service management queries 
from the clients, retrieves corresponding customer service 
information from the CSM Agent's database and generates 
an appropriate graphical based response which is returned to 
the clients for display by their browsers. 

Within the data repository, the customer information 
identifies each customer subscribing to the CSM service and 
for each customer, there is associated network configuration 
and network statistical information. The network configu- 
ration information includes configuration parameters for 
access ports and virtual circuits, for example, as described in 
the Frame Relay Service Management Information Base 
(MIB) (IETF Network Working Group, "Definitions of 
Managed Objects for Frame Relay Service", RFC 1604) and 
the ATM MIB (IETF Network Working Group, "Definitions 
of Managed Objects for ATM Management", RFC1695). 
The network statistical information includes the appropriate 
information to process statistics requests for the supported 
MIBs. The CSM Agent receives customer information and 
configuration changes from the NMS as needed. These 
changes are processed by the CSM Agent as they are 
received. The CSM Agent receives statistical samples from 
the NMS on a periodic basis, for example, in 15 minute 
intervals. The 15 minute intervals are saved for a 24 hour 
period (i.e., 96 intervals arc saved) and a rolling total of 
these last 96 intervals is maintained. In addition, the reposi- 
tory stores hourly, daily and monthly accumulations of the 
statistical intervals. Hourly accumulations begin and end on 
the hour (e.g., 3:00 to 4:00). The daily accumulations begin 
and end at midnight. The monthly accumulations begin at 
midnight of the first day of the month and end at midnight 
of the last day of the month. The current hourly, daily and 
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monthly accumulations are updated as each sample is 
received making these totals as up to date as possible. The 
historical statistics are available until the data is purged. 

Although the preferred embodiment of the CSM system 
5 incorporates the exchange of network data with the NMS 
using an SNMP interface to the CSM Agent server whose 
data repository is in turn accessed by the SD server, the SD 
server could support a direct interface to the NMS and 
multi-vendor network management products to support 
10 multi-vendor service management. 

The CSM Service Director client interface is a WWW 
browser capable of supporting HTML 3.0, Java Script 1.1 
and Java. 1.0.2 (e.g. Netscape Navigator 3.01 or Microsoft 
15 Internet Explorer 3.0). HTTP is stateless protocol and thus 
each CSM Service Director screen needs to contain suffi- 
cient user data, via hidden field values, to display subsequent 
screens. 

A request from the WWW browser is sent to the CSM 
20 Service Director back end server via the Web Server. The 
CSM Service Director back end server processes the web 
clients request and returns a composed page to the client via 
the Web server. 

2 5 Each HTML page contains HTML, Java Script, and Java 
Applets. HTML is used to compose Web pages. Java Script 
is used for local client side processing (e.g. button actions, 
update time stamps, setting cookies.) Java Applets are used 
to provide more demanding Web interactions (e.g. display- 

30 ingmaps). 

The software structure of the SD server characterizes an 
HTML-common gateway interface (CGI) based architecture 
which consists of both server application processing and 
client UI screen page generation. FIG. 3 shows the HTML- 
35 CGI based software architecture of the SD. As previously 
described, the CSM Agent is an external process that main- 
tains the database of customer service information which is 
retrieved by the SD via an SQL interface. 

4Q The CSM Service Director constitutes a software appli- 
cation that is executed on a conventional server platform 
known as a hypertext transfer protocol deamon (HTTPD) 
that runs on a UNIX based data processing unit. The HTTPD 
facilitates communications over the WWW between clients 

45 and the server, and an example of the HTTPD is the 
Netscape Enterprise Server. The CSM Service Director 
application consists of four major modules: Client UI, 
Service Management, Process Management, and Event Log- 
ging. The modules in general comprise autonomous pro- 

50 cesses and/or application program interfaces (APIs) which 
defined callable routines to derive certain information. 

The Client UI module provides functionality for manag- 
ing the requests from web clients. Each action taken by a 
service end-user triggers a lightweight CGI process that 
55 retrieves/filters/sorts data through a Web API from the 
Service Management module, which data is stored in a RAM 
workspace labeled as Perf Data in FIG. 3. A corresponding 
HTML page is then generated as the response. 

6Q As shown in FIG. 3 the client UI module includes a CGI 
parser, a WEB services API and a WEB page formatting 
API. 

The CGI parser provides a lightweight CGI program to 
parse incoming parameters and invoke the corresponding 
65 WEB Services API. It consists of a set of CGI programs 
wherein each corresponds to a user request action. Each user 
request from either a service user or the system administra 
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tor invokes a CGI program on the Web server. Each CGI 
program does the following: 
parses the web CGI parameters; 

invokes a WEB Services API routine using the parsed CGI 

parameters as arguments; and 
returns the result to the Web browser 
Each CGI program returns the next HTML screen page of 
the user request. 

The WEB Services API provides a user request level 
interface to Service Management APIs. It consists of a set of 
APIs between the CGI program and UNI/PVC APIs and 
System Management APIs. Each WEB Services API corre- 
sponds to a CGI program. Each API is defined as a dynami- 
cally linked library, such that multiple CGI programs can 
share a single copy of that API. Each WEB services API 
does the following: 
validates user id with IP address; 
validates user capabilities; 

invokes some of the APIs in the Service Management 
module; 

if returned object is a collection then filters/sorts the collec- 
tion; 

invokes a WEB Page Formatting API to compose a HTML 

screen page for the returned object as necessary; and 

returns the composed HTML screen page. 

The WEB Page Formatting API provide a common page 
formatting interface to WEB Services APIs. This API is a set 
of class methods that WEB Services APIs invoke to build 
HTML pages. Each WEB Page Formatting API builds a 
generic HTML page or a portion of a HTML page. 

Each class method composes a HTML screen page for a 
given object or a collection of objects. Each class method 
returns the composed HTML screen page. 

The Service Management module consists of two parts: 
one having functions for service end-users, and the other is 
for service provider administrators (or service provider 
end -users). Service end-user actions are served by a UNI, 
PVC, UNI List, PVC List, End Point, and Performance 
Collection API that encapsulates the representation details of 
these services. Service provider administrator actions are 
served by a system information user, and customer API that 
retrieves and updates customer and user account data, ser- 
vice provider information, as well as license information. 
The system information cache constitutes shared memory in 
RAM, in which the customer and user profile data together 
with the system data are stored. 

As shown in FIG. 3 the Service Management Module 
includes a number of APIs and a cache memory. The 
Performance Collection API provides disk file storage for 
user requested performance data. 

The performance data can be stored on disk files in an 
ASCII format readable by an application such as Microsoft 
Excel. As a Performance Report screen is being generated, 
the data set is saved to a temporary file. A user request to 
"Export Raw Data" causes this temporary file to be renamed 
to a specific file name. 

The PVC API provides a service level interface to access 
object identification (OIDs) associated with PVCs. It is an 
API between client UI and CSM Agent Informix database 
for configuration and status data of PVCs. Performance 
statistics data are also taken directly from the CSM Agent 
database via SQL queries. The API is defined as a dynami- 
cally linked library, such that multiple CGI programs can 
share a single copy of this API. Methods include: 
for each PVC, read of any specified 01 D; and 
for each PVC, write of alias; 

The PVC API uses the CSM Agent database for PVC data. 
SQL queries are used to get data. 
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The UNI API provides a service level interface to access 
OIDs associated with UNIs. The UNI API is an API between 
client UI and CSM Agent Informix database for configura- 
tion and status data of UNIs. Performance statistics data are 

S also taken directly from the CSM Agent database via SQL 
queries. The API is defined as a dynamically linked library, 
such that multiple CGI programs can share a single copy of 
this API. Methods include: 
for each UNI, read of any specified OID; and 

10 for each UNI, write of alias 

It uses CSM Agent database for UNI data. SQL queries are 
used to get data. 

The PVCList API provides a service level interface to 
access managed object indices associated with PVCs for a 

15 specified community. PVCList should also provide APIs for 
retrieving information of PVCs related to specified UNIs. It 
comprises an API between client UI and CSM Agent Infor- 
mix database for retrieving specified information on a speci- 
fied UNL The API is defined as a dynamically linked library, 

20 such that multiple CGI programs can share a single copy of 
this API. It Uses the CSM Agent database for PVC data. 
SQL queries are used to get data. 

The UNIList API provides a service level interface to 
access managed object indices associated with UNIs for a 

25 specified community. The UNIList API is between client UI 
and CSM Agent Informix database for retrieving specified 
information on a specified community. The API is defined as 
a dynamically linked library, such that multiple CGI pro- 
grams can share a single copy of this API. It uses the CSM 
Agent database for UNI data. SQL queries are used to get 
data. 

The End Point API provides a service level interface to 
access End Point managed objects. It consists of an API 

35 between client UI and CSM Agent Informix database for 
retrieving specified information on specified End Point. The 
API is defined as a dynamically linked library, such that 
multiple CGI programs can share a single copy of this API. 
It uses the CSM Agent database for End Point related data. 

40 SQL queries are used to get data. 

The System API provides a service level interface to 
access all system management information, related service 
provider information, start/stop system, report status of the 
system, and license information. 

45 The System API is between client UI and System related 
information. Each API is defined as a dynamically linked 
library, such that multiple CGI programs can share a single 
copy of that API. 

UNIX scripts are used to start, maintain, stop and report 

50 status of the process management daemon. API between 
client UI and system license information includes the fol- 
lowing methods: 

convert to system license information from application key; 
upgrade system license based on the new application key; 
55 and report current license information and license utili- 
zation data. 

It uses shared memory segments to cache data. Each 
update to the memory is written back to the disk files. 
RogueWave tools.h++ is used to support data persistency for 
60 non-shareable data. 

User account API uses license information to limit the 
number of users supported by the system. 

CGI programs use service provider information to gen- 
erate customized page. 
65 The System Information Cache provides an internal inter- 
face that is used by the components from the Service 
Management block, for communicating with shared 
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memory. It comprises an API used for communication with creation of shared memory segments, and control of the 

the shared memory segments. Its methods include: running processes. It makes use of CSM Agent code for 

attachment of the shared memory; and management of processes. Its functionality includes: 

detachment of the shared memory. running processes; 

Any interaction with shared memory needs to go over this S checking if the processes are running; and 

interface. creation of the shared memory segment. 

The Customer API provides a service level interface to The Event Logging module is used by client UI, service 

access customer and service provider data. It is an API management and process management modules to report 

between client UI and customer information and provides any software log or user event. Events are first logged to a 

the following: 10 shared memory segment. ELS collector then copies the 

a list of customers; event logs to disk files. A user event daemon is used to 

for each customer, read and write of any specified field; further filter and convert user events from the disk files into 

create new customer; and readable ASCII user event files. 

delete an existing customer. The Event Logging Module shown in FIG. 3 includes an 

A usage counter is maintained for each customer both in 15 ELS API, an ELS Collector, an ELS Log, a User Event 

cache and on disk files. The counter increments each time a Daemon, and User Events. 

user of that customer logs in. Any write operation to the The ELS API provides a common logging service that is 
memory system information also writes to corresponding used by client UI, service management and process man- 
customer and service provider data disk files. agement to log user events and software problems. This API 

The User API provides a service level interface to access 20 is taken directly from the Network Managers (46020, for 

user account data. It is an API between client UI and user example) SW_Error and ELS APIs. New event descriptors 

account information and provides: are introduced for each required source code file. Each new 

a list of user accounts; source code file is required to declare and use its own event 

for each user account, read and write of any specified field; descriptors to uniquely identify potential software problems 

create new user account; and 25 within that file. Data are logged to shared memory by 

delete an existing user account. applications. Event descriptor parsing needs to be called in 

Internal data per user account includes: each build, 

last login date and time; The ELS Collector collects logs from various applica- 

service user phone number; tions. A C process is built based on 46020' s ELS collector, 

service user note pad; 30 Data are read from shared memory and then logged to hard 

service user confirmation enabled; disks. 

number of consecutive service user login failures; The ELS Logs provide persistent logs which are kept in 

UNI filter criteria; a format identical to 46020' s ELS and can be examined via 

UNI sort field; 46020's logtool. 

UNI sort ordering; 35 The User Event Daemon generates user events based on 

PVC filter criteria; the logic in 46020 ELS "log" process to generate user 

PVC sort field; and events. It also manages the available disk files for user 

PVC sort ordering. events. The daemon retrieves and filters out user event 

Any write operation to memory system information also associated logs from the disk log files generated by ELS 

writes to a corresponding user account files. It uses customer 40 collector, and dumps the user events to a list of user event 

and service provider data API to get a list of available files in the format defined by the user event descriptors, 

customers. Netscape Enterprise server is used to store user User Events provide persistent user events which are kept 

account and password, and to enable/disable user accounts. for further processing, like billing and can be examined via 

Memory System Information provides an in-memory any text editor, 
cache for system information files. It consists of C++ data 45 To make CGI processes lightweight, a dynamic linking 
structures residing in shared memory, used to store system library whereby executable routines are loaded into memory 
information read from disk files. Data cached are: is used, and shared memory is used for inter-process corn- 
system mode; munications. User, customer, service provider, and system 
CSM Agent status; and information are stored in a shared memory segment, spe- 
system information. ( 50 cifically the System Information Cache, accessible from the 
RogueWave tools.h++ is used for the following data: dynamically linked libraries. Each CGI process handles the 
customer data; request on its own, with the assistance of dynamically linked 
service provider information; and libraries, to access the shared memory. The shared memory 
user account data. is described in greater detail later. 

APIs are used to access the above information. 55 Moreover, any persistent data that is Service Director 

The Database Utility API provides tools for accessing specific and is not available in the CSM Agents Informix 

Informix database. Database Utility API wiU also provide database are stored in the shared memory, 

functions for opening and closing database. A Database The information related to the customer, user, service 

Utility API will be used by the other API modules for provider, and system in general will also be backed up on the 

accessing Informix database. 60 hard drive. The cron job will trigger the backup process 

The Process Management module is responsible for pro- periodically. The default interval is 15 minutes, 
cess running and monitoring. It starts the respective pro- Netscape Enterprise server 2.0 spawns a CGI process for 
cesses and ensures each is still running; processes are each user action taken by a Web user. This CGI process then 
restarted if necessary. Also, Process Management kills other executes the corresponding CGI program. Binary 
processes for a graceful shutdown. 65 executables are bundled together with Netscape Enterprise 
As shown in FIG. 3 the Process Management Module server for managing user accounts and passwords. Pass- 
Includes a SD_Daemon which provides process startup, words are not maintained in standard UNIX file /etc/passwd. 
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Essentially, every navigation action taken by the user will reported by the Login CGI process, an error notification 

trigger a CGI process that determines the next page to screen is constructed with a specific reason, i.e., non-existent 

present. For each CGI process, user access is validated account, invalid password. 

quietly in the background. There isn't really a user session Each login attempt is logged as a user event, regardless of 

for each login to Service Director, 5 whether the attempt succeeds or not. 

Netscape server plug-in API is a set of ANSI C functions Details respecting the log in mechanism follows, 

that enables users in tailoring Netscape Enterprise servers The Inactive User Auto Logout automatically logs out an 

behavior. Server's plug- in functions may be created or inactive user, regardless of whether it is an internal/external 

altered by this API. For example, functions can be created service user, or an administrator. 

for access control of the Service Director. 10 The auto logout cron job is used to automatically log out 

User access authorization is achieved via user account ID inactive users. Once an active user is logged out, any further 

and IP address. User Ids and IP address are transferred action taken by the user leads to an error notification screen, 

within HTTP protocol request and response header for each The user is required to log in again. The cron job is started 

request and response. Both user Ids and IP address are used every 10 minutes to clean up inactive users. The cron job 

for subsequent access authorization of CGI programs. 15 calls the System Management API for inactive auto logout 

There is a web-based file transfer function embedded in period. For each active user, it calculates whether the 

Service Director. It can be triggered by pressing the cor re- inactive period is greater than or equal to the system 

sponding button on the navigation frame. Directories are parameter. If so, that user is automatically logged out, 

created for each customer. Users within each customer share System Management API is then used to delete the active 

the same directory. 20 user, and a user event is generated. 

All user accounts of a particular customer share a com- The side effect of the approach is that an inactive user may 

mon directory. Upon creation of a customer account, a be logged out 10 minutes later than what the system param- 

directory for the customer is created with the correct read/ eter specifies, due to the cron job scheduling period, 

write permission. Userlds and IP address are used for Service User Actions include Get and Set Operation; 

directory access authorization. An individual user can access 25 Sorting and Filtering; Export Performance Report Data; and 

only his assigned customer directory. The user cannot dis- Server Start, Stop and Status. 

cover the existence of other customers. The Get and Set Operation gets data for related managed 

An internal user is created by configuring the user as object, and sets data directly to the CSM Agent. Upon user 

"internal" from the user account management page. An login, data associated with the customer are polled by the 

internal user account type has the same look and feel as a 30 system on request. 

regular customer user except for a slightly modified wel- Get data: UNI/PVC API or System Mgmt API CSM 

come page. There is a drop box selection menu that allows Agent database for the item. In normal operation, data are 

the user to switch to another customer portfolio and act as a returned. If the response is expired, a response HTML page 

user from that customer. By switching it is meant that no is constructed to notify the user to wait. If the response is 

login procedure is needed. This internal user (or super user) 35 undefined, UNI/PVC API informs the user that information 

is intended for the service provider only. is not available. In any case, Web API is used to form the 

Direct Informix queries to the CSM Agent database are new HTML page. The number of gets performed for the user 

chosen as the mechanism for retrieving configuration and action is logged to User Events by UNI/PVC API. 

historic performance statistics data because one SQL query Set data: UNI/PVC API calls CSM Agent database to set. 

can retrieve multiple intervals of statistics or configuration 40 The response is used by Web API to form a new HTML 

data for multiple network objects. Other vital, invisible data page. The number of sets performed for the user action is 

items, such as time stamps of statistics intervals, can be logged to User Events by UNI/PVC API. 

retrieved and used for performance reporting. The Sorting and Filtering operation handles sort and filter 

This approach does not cache any configuration and configurations and performs sorting and filtering of data, 

historic performance statistics data. Each configuration and/ 45 Sorting/filtering fields and ordering are maintained inter- 

or performance report triggers database queries to the CSM nally per user by the system. Upon reconfiguration or user 

Agent database. action, the system's internal shared memory is accessed and 

In the Service Director Server/Application there are a updated for the sorting and filtering criteria as follows: 

number of high level interactions between software modules Sorting: This action will be done on the user side in the Java 

in response to common, representative external and internal 50 applet. 

events. The following gives an overview of the functional Filtering: Upon click of filtering field, a CGI program is 

division of the Service Director. started to retrieve the current filtering criteria CSM Agent 

With the User Login a user logs in as either an internal/ database via User API and format them via Web API. 

external service user, or an administrator (i.e., admin Upon applying filter preference, a filter preference CGI 

account). Login may succeed or fail. Failure reasons are 55 program is started to save the filtering criteria to 

invalid password, disabled account, non-existent account, In-memory System Info via User API. The CGI then 

multiple logins, server status locked, or unavailable service. retrieves all the data, again via UNI/PVC API and 

Upon user login, a login CGI program is fixed up. The re-sorts/re-filters the results and forms the first page UNI 

Login CGI uses the system shared memory's simple user or PVC list via Web API. 

database for user access authorization. If login is successful, 60 The Export Performance Report Data operation saves 

the CGI program calls Web API, which again calls System current viewed Performance Report data to a disk file. Data 

API, to construct the users welcome screen. System then set of the current display graph is exported to a file on a 

changes the status of the user account to active. pre-defined user-specific directory on the Web server. As a 

If the system service is not available, or the user account Performance Report screen is being generated, the data set 

is disabled, or the user is already logged in, as reported by 65 is saved to a temporary file (e.g. perfl.trop), and the tem- 

System API, an error notification screen is constructed to porary file name is a hidden field in a generated HTML page, 

notify the user of the specific reason. If login failure is A user request to "Export Raw Data" causes this temporary 
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file name to be passed back to the Web server and renamed As previously discussed the present invention relates to an 
to a specific file name (e.g. perfl.rpt) in the pre-defined Internet-enabled service management system and method 
user-specific directory. The current date and time are used to that enables the customers of a service provider with web- 
make the file name unique. The name given to the permanent based access to manage the services they receive from a 
file may be specified by the user. The data can be accessed s service provider. The management capabilities of the system 
via a file transfer protocol from the user-specific directory. thc ability to perform pcr f orm ance and configuration 
All hanging temporary files are deleted upon "User Logout" management on network services provided by the service 
or "Inactive User Auto Logout". provider 

Hie Export Raw Data function allows a user while One of these SD applications performs user validation and 

viewing performance reporting screens, the capability of ^ ^^ fc 1 £ f ^ {h h fa 

saving data points of the performance graph to the user s : « . » * . & ^ , . . 6 .. , 

Web Irectory as provided by the Service Provider. The data In < ern f According to this aspect a user s session is timed 

points may be saved using Excel. The system allows a user °* f er a P enod ° f nwcUvity between the user s browser 

to retrieve files, generated via the Export Raw Data function and the server application. 

from the user's Web directory to the user's local personal In the P ast > a user lo S* on t0 m faternel ^plication by 

computer or workstation. This allows the user to view and 15 Providing a User Id and User Password. The user remains 

manipulate his local copy of the data set using an application lo gS ed on 10 svstem until either the user logs out of the 

such as Excel. application or the user's session is timed out by the server 

Server Start, Stop and Status are basic system mainte- application. Due to the statelessness of the HTTP protocol, 

nance functions. Start, Stop puts the system into mainte- thls mechanism does not allow multiple logon of identical 

nance mode, monitors and reports server daemon process 20 user Ids. It presents a problem if the user's Internet browser 

status. Upon click of Server Mgmt from dashboard, a server crashcs and thc ^ wishes to ^-logon to the system; the 

mgmt CGI is started, which accesses System API to examine user would have to wait until hls previous session is timed 

the current system mode and server process status, and out bv ^ server application before he can re-logon to the 

forms an HTML page via Web API. Upon click of Start application. This logon mechanism also disallows a user 

Server, Stop Server or Maintain Server, a corresponding 25 from switching to another workstation to logon to the 

CGI program is started to handle the basic system mainte- application whilst having a current active session on another 

nance function. Each CGI is simply a UNIX script. workstation; the user either needs to log out from the 

The process for each of the maintenance functions fol- application from his original workstation or wait until his 

j ows . current session is timed out by the server application before 

1. Start Server: Startup any server daemon process that is 30 he can lo S on from another workstation. To solve this 
not already up. Set system mode to up. Typical system problem, a new logon system is created. This new logon 
startup sequence is as follows: authentication system prevents multiple logon of the same 

a. Start Netscape Enterprise server 2.0 daemon; lo f n Id and ^ * b ™ y to acco l mmodat ^ subsequent logon 

. T , „ : t . e *-**o. when a user s Web browser has crashed or the user is 

Wo CaihTSed memo"" ataaaaSX>n M ° SySl6m » operating from another workstation. 

no ac e s are memory, The SD application logon authentication aspect prevents 

c. Create shared memory segment for ELS collector and logQn of identical logQn , d ^ ^ abiUty (o 

start ELS collector process; accommodate subsequent logon when a user's Web browser 

d. Start User Event Daemon process; has crashed with the ability to logon from another worksta- 

e. Schedule auto logout cron job and server status monitor 40 tion whilst having a current active session on another 
cron workstation. 

f. Load all dynamically linked libraries, i.e., UNI API, In accordance with this aspect the application maintains a 
System API, Web API; and list of users. For each user the application stores a user Id, 

g. Set system mode to up. a user password, status, and an IP address. When a user 

2. Stop Server: Gracefully stop and then forcefully kill all 45 requests access to the SD application, the application 
server daemon processes. Shared memory segments are requires the user to enter a user Id and a user password. The 
not removed. Set system mode to down. application validates the information provided against the 

3. Maintain Server: Set system mode to maintenance. Auto- list of users stored in the application. If the user name and 
matically log out all active service users by using System password matches, the application checks the user's status in 
API to delete active users. 50 the application. If the user's status is "enabled" then the user 
The User Event Logging function logs a service user's get is logged onto the system and the user's status is changed to 

operations per user action. "active". The IP address of the user's workstation is 

The number of get operations on the service management retrieved through the environment variable "REMOTE_ 

level is recorded per user action. A get operation presents the ADDR" by the server application. This IP address is saved 

equivalent of a user action. Service user's set operations are 55 in the user's IP address field. If the user's status is "disabled" 

logged similarly. The UNI inventory list action from dash- then the user is rejected. If the user's status is "active", then 

board is used to illustrate the user interaction. the application determines if the IP address of the current 

Upon click of UNI Services from dashboard, a UNI request matches with the stored user's IP address. If the IP 

service CGI program is started up, which accesses UNIList addresses match, the user is logged on to the application. 

API to retrieve a list of UNIs for the service user. All 60 However, if the IP addresses do match (i.e. multiple logon of 

corresponding fields are retrieved per UNI using UNI API. a user with the same user Id has been detected), a log out 

Web API then generates the response to the user action and form will be displayed to inform the incoming user that a 

also uses ELS API to log made action. ELS Collector user with the same user Id is already in the system. The 

process periodically polls the ELS shared memory log and application will prompt the user to log off the other session, 

writes them to Logs. The daemon process User Event 65 To enforce the user logon, functions defined using 

Daemon consistently receives updates to the Logs, filters out Netscape Server API are to be created. Since Netscape 

user events and writes to User Events disk file. Server will respond to every incoming request from clients, 
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functions can be used to authenticate users before the server 
starts to service the request. 

Four functions are defined using Netscape Server API. 
The first function services the logon process. It checks the 
user Id and password against the list stored in the applica- 
tion. It sends out a JavaScript cookie to the client after the 
user Id and password are validated. The second function 
services the log out process. 

The third function services the log out form. For example, 
when a user tries to log into the system with a user Id which 
belongs to someone who has already logged onto the system 
(i.e. multiple logon has been detected), a log out form will 
be displayed to inform the incoming user that a user with the 
same user Id is already in the system, and prompt him to log 
off the other session. 

The fourth function will verify the JavaScript cookie to 
see if the server will go on to service the request at all. 

FIG. 4 illustrates the flow of information between the 
client and server. The client sends a TCP/IP message con- 
taining user Id and password to the server. The IP address of 20 
the client is included in the TCP/IP message. If the client is 
authorized the server returns a welcome page together with 
a JavaScript cookie, which contains the user Id, to the client. 
The client browser matches the URL destination (domain) 
address to that of the cookie. It then sends the cookie 
together with the query to the server. 

The JavaScript cookie expires at the end of the session i.e. 
logout or browser terminated. 

FIG. 5 is a flow diagram illustrating the multiple logon 
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topic, or through context sensitive help from the application 
updates the content frame with the corresponding help text. 

The SD application's context sensitive help invention 
provides the user with a consistent place to invoked context 
sensitive help. Context sensitive help is invoked from a link 
in the "dashboard" frame window. This mechanism allows 
the creation of a help window from the application screen 
with or without special HTML tag encoding in the content 
frame's HTML page. The content sensitive help frame can 
also be invoked as a stand-alone application. If the context 
sensitive help window is invoked from the SD application 
with special HTML tag encoding in its context HTML page, 
context sensitive information will be presented, otherwise, a 
default help information page will be presented. 

The application, in addition to generating HTML contents 
for presentation, generates the following HTML tags: 
In each Content Frame page: 

<Form Name="helpForm"> 

<Input Type-"hidden" Name-"screenID" value-"(a 

screen identifier)"> 
<Form> 

The Dashboard frame contains JavaScript code to create a 
new browser Help Window. 

The Help Window frame requests more HTML help 
contents from the SD application server. The resulting 
request contains JavaScript code to look into it's opener (i.e. 
parent) window to check if it has a Content Frame with a 
"screen Id" tag. This "screen Id" tag is mapped to a 
corresponding help URL by the Help Window for displaying 



mechanism, FIG. 6 is a flow diagram illustrating the logout 30 help information in the Help Content Frame that corre- 



process. 

Although the foregoing description is based on the CSM 
SD application it is to be understood that the basic func- 
tionality which prevents multiple logon is not limited to this 
system and can be implemented in other client-server appli- 35 
cations. 

Another aspect of the present invention relates to online 
context sensitive help wherein the SD application provides 
a user friendly explanation of the current content in its 
content frame window. 40 

In the past, a user using an Internet based application 
would invoke context sensitive help information by clicking 
on a link on the content page. Due to the nature of Web 
browsers, the browser display area is usually smaller than 

the display HTML page; thus a user would need to scroll the 45 parent. window.opener. top. help Win=null; 
entire frame to view all of the page context. It creates a } 

problem that a user might have to scroll the page to find the function gotoContextHelp( ) { 
context sensitive help link for invoking the help feature. var helpPath=7SD/SDWBUI/"; 
Furthermore, if the help link was not implemented on the var helplndex=""; 

display page, a user would be unable to get any help so if (navigator.userAgent.indexOf("3.0") !=-l) 



sponds to the "screen Id" tag. If "screen Id" is not present, 
then a default help page will be presented. 

An example of a JavaScript code for implementing the 
help feature in the CSM SD follows. 
<HTML> 
<HEAD> 

<TITLE>CSM SD Documentation</TITLE> 
</HEAD> 

<SCRIPT LANGUAGE-^ avaScript"> 
window.onerror«null; 
function cleanup( ) { 

if (navigator.userAgent.indexOf("3.0") !=-l) 
parent.window.opener.helpWin=null; 
else 



information. 

This aspect of the present invention solves the aforemen- 
tioned problem by creating a new context sensitive help 
mechanism. This new mechanism provides a consistent 
context sensitive help button on the "dashboard" frame as 
shown in FIG. 7. A user is able to click on the Help button 
on the dashboard and be presented with information relating 
to the current right frame screen. The Help information is 
presented as a new web browser. The help screen is updated 



as the user navigates to different screens and selects the help 60 { 



he lplndexaparent. window. opener, framesfl] 

.document.helpForm.screenlD. value; 
else 

helplndex- 

55 parent. window. opener. top. frames[l] 
.document.helpForm.screenl 
D. value; 

var newURL=helpPath+"index.html"; 
if (helplndex=="640") 



button. 

The navigation frame (i.e. the left frame) of the help 
window allows a user-to navigate through the help docu- 
ments. The content frame (i.e. the right frame) of the help 
window contains the selected help content. The navigation 
frame contains a CSM SD application like dashboard and 
additional help topics. A click on the dashboard or on a help 



65 



newURLohelpPalh+"TP/lwelcome.html#b9086" 
} 

if (helplndex=="300") 
{ 

newURL^helpPath+"TP/2netport.html#b9022"; 
} 

if (helplndex— "310") 
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{ 

newURL-helpPath+"TP/3frport.html#b44S0"; 
} 

if (helplndex— "400") 
< 

newURL=helpPath+"TP/5pvcall.html#b9244"; 
} 

if (helplndex— "410") 
{ 

newURL=helpPath+"TP/7frpvcs.html#b9103"; 
} 

if (helplndex=="500") 
< 

newURL=helpPath+"ITP/12traf.html#b4531"; 
} 

if (helplndex=="510") 
{ 

newURL=helpPath+"TP/12traf.html#b4536"; 
} 

if (helplndex=="520") 
< 

newURL=helpPath+"TP/12traf.html#b4540"; 
} 

if (helplndex=="530") 
< 

newURL-helpPath+"TP/12traf.html#b4546"; 
} 

if (helpIadex--"540") 
{ 

newURL=helpPath+"TP/12traf.html#b4546"; 
} 

if (helplndex=="550") 
{ 

newURL=helpPath+"TP/12traf.html#b474"; 
} 

if (helplndex=="610") 
{ 

newURL=helpPath+"TP/16prefs.html#b4558"; 
} 

if (helplndex=="620") 
{ 

newURL=helpPath+"TP/15comm.html#b4554"; 
} 

if (helplndex=="630") 
{ 

newURL=helpPath+"TP/15comm.btml#b4557"; 
} 

if (helplndex=="710") 
< 

newURL-helpPath+"TP/16prefs.html#b4564"; 
} 

if (helplndex— "720") 
{ 

newURL-helpPath+"TP/l 6prefs.html#b45 69"; 
} 

if (helplndex~"320") 
{ 

ncwURL=helpPath+"TP/4atmport.html#b9030"; 
} 

if (belpludex~="440") 
{ 

newURL=helpPath+"TP/9mclist.html#b8381"; 
} 

if (helplndex=="420") 
{ 

newURL=helpPath+"TP/8vccvpc.hlml*to7364"; 
} 
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if (helplndex=="430") 
{ 

newlIRL=helpPatb+"TP/llmcvc.html#b9090"; 
} 

S if (helplndex~"450") 
{ 

newURL=helpPath+"nP/10mcdet.html#b9087'; 
} 

if (helplndex—."810") 
10 { 

newURL-helpPath+"TP/13atmtr.html#b9099"; 
} 

if (helplndex— "821") 
{ 

is newURL-helpPath+"TP/13atmtr.html#b9100"; 
} 

if (helplndex=="822") 
{ 

newURD=helpPath+"TP/13atmtr.html#b9102"; 
20 } 

if (helplndex=="830") 

{ 

newURL=helpPath+"TP/13atmtr.html#b9101"; 
} 

25 if (helplndex=="831") 
{ 

newURL=helpPath+"TP/13atmtr.html#b9101"; 
} 

if (helplndex=="900") 

30 { 

newURL=helpPalh+"TP/14trans.html#b8727"; 
} 

this.frames[ 1 ] .location, href =newURL; 
} 

35 </SCRIPT> 

<FRAMESET ROWS="75,*" onUnload="c]eanUp( )" 
onLoad-"gotoContextHelp( )"> 

<FRAME SRC="top.htmr' NAME«"dash" SCROLLING^ 
NO 

40 MARG1NHEIGHT="0"> 

<FRAME SRC-"TOC/index.hlml" NAME-"content" 

MARGINHEIGHT="0*' 
SCROLUNG=YES> 
</FRAMESET> 

45 < 

FIG. 8 illustrates the online context sensitive help frames 
and FIG. 9 is a flow chart for online context sensitive help 
process. 

Again, this aspect of the present invention is not limited 
50 to the CSM SD application. 

A further aspect of the present invention is concerned with 
configurable third party Internet application integration. The 
CSM SD application supports dynamic run time integration 
of external Internet applications. The applications can be 
55 configured during run time to run a given URL passing the 
URL a predefined set of URL parameters. This feature is 
accessed by a user from the dashboard frame of the SD 
application. In the present embodiment up to five applica- 
tions can be supported but it is to be understood that this a 
60 system limitation and not a limitation of the basic concept. 
In the past, HTML pages with third party Internet appli- 
cations were programmatically generated with predefined 
URLs and links, in the form of graphical interface format 
(GIF) images. These URLs and GIF file names are coded 
65 into the software that generates these HTML pages. Once 
encoded into the software, these URLs and GIF file names 
are not changeable by the application end user. To solve the 
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problem, a new mechanism is created. This new mechanism 
allows dynamic run time configuration of external Internet 
applications into the SD application. 

The SD application allows the configuration of Status, 
Application Name, Button Image Path, URL, and Target 
Location via a Third Part Application Configuration Screen. 
(FIG. 10) 

Status allows the third party application to be enabled or 
disabled. Application Name is the name of the third party 
application. Button Image Path is the URL of the GIF file 
that represents the third party application. URL is the URL 
of the third party application. Target Location is the location 
where the third party application will appear when invoked 
by the user; the third party application can appear either in 
a new browser window or in the Content Frame. FIG. 11 
depicts the third party application buttons on an end-users 
browser window. 

Configuration of third-party applications is a two step 
process. Firstly, the administrator configures the third party 
application via the Third Party Application Configuration 
Screen shown in FIG. 10. Then, the administrator configures 
each user to allow or disallow access to these configured 
third party applications. 

Upon log on, each user will see assigned third party 
applications appearing in the dashboard frame of the SD 
application. The user can access these third party applica- 
tions by clicking on these links and the corresponding 
Internet application will appear either in a new frame 
window or in the context frame. 

The application contains a list of third party application 
specific information, namely: Enabled Flag, Application 
Name, Button Image Path, URL, and Target Location. A 
presentation process is used to present the list of third party 
application information for viewing and editing by the 
application administrator. The application also keeps a list of 
user attributes: user Log on Id, user name, customer name, 
community string (VSN), and a list of assigned third party 
applications. The SD application upon receiving the request 
to generate the dashboard frame for a user, determines if any 
of the third party applications has been enabled for this user. 
For each enabled third party application, a presentation 
process generates the corresponding HTML tag using the 
stored third party application information. The presentation 
process also generates a HTML bidden form tag containing 
the identifiers: userld, userName, customerName, commu- 
nityString and their corresponding values. The generated 
HTML tags are inserted into the dashboard HTML page. The 
Dashboard Frame page contains the following code snip: 
function submitCGIForm(aURL,aTarget) { 

document.CGIForm.action«aURL; 

document.CGIForm.target-aTarget; 

document.CGIForm.submit( ); 

} 

<FORM NAME-"CGIForm"> 

<INPUT TYPE«"hidden" NAME="userId" VALUE=" 

(some value)" > 
<INPUT TYPE~"hidden" NAME=."userName" VALUE-" 

(some value)"> 
<INPUT TYPE="hidden" NAMEo«customerName" 

VALUE-"(some value)"> 
<INPUT TYPEo"hidden" NAME="communityString" 

VALUE="(some value)"> 
</FORM> 

<A HREF=javaScript:submitCGIForm("http://(some URL) 
"/'(target name)") onMouseOver-"top.status-'(some 
message)' ;return true"><IMG SRC=http://(some Gif file 
URL) BORDER-0 ALT-"(some message)"x/A> 



The generated dashboard HTML page is sent to the user's 
browser. 

When the user clicks on an external application button, 
the corresponding CGI process is called using the URL 
5 information as configured on the Third Party Configuration 
Screen. The predefined URL parameters are sent along in the 
URL request via a JavaScript submit command. The result- 
ing URL request is displayed either in a new frame window 
or in the context frame as configured in the Third Party 
io Application Configuration Screen, 

The four parameters of a user (user log on Id, user name, 
customer name, community string) will always be sent when 
an external application is called. These will also be the only 
parameters sent regardless of the page context. An external 
15 application can ignore its input and not make use of these 
parameters if it so chooses. All parameters from the appli- 
cation are passed to the external application through a 
"form" which is a standard feature in HTML 3.0 and later. 
"POST" method is used but this should not affect an external 
20 application's implementation. 

The browser packages the parameters in a form to a 
special format called URL encoding before sending them 
out. URL encoding tacks all the keys and values together, 
replacing space and special characters where necessary. 
25 Parameters that have been URL-encoded can end up looking 
like the following example: 
userld = a dm in&user Name = 
CSM%20Admin&customerName-. 
Because the parameters are passed to the external appli- 
30 cation in this URL-encoded form, an external application 
will have to decode the input before it can use the param- 
eters. Decoding this information is a common task, and there 
are lots of tools for doing just that. 

FIG. 12 is a flow chart illustrating configurable third party 
Internet application integration. 

A further aspect of the present invention relates to a 
function known as context switching to customer accounts. 
In this aspect the SD application allows privileged users to 
adopt identities of different customer accounts to trouble 
shoot problems with a particular customer, from that cus- 
tomer's point of view. The user selects a customer from a 
selection list that displays all of the application's customers. 
Upon selection of a customer, the user immediately adopts 
the identity of the selected customer. Three categories of end 
users are supported by this application. These are: external 
user or customer end user; internal user or service provider 
end-user who takes on role of a particular customer; and 
system administrator or a service provider end-user who has 
authority to configure the system. 

In the past, for a user to adopt the identity of another 
customer in a system that required user authentication the 
following steps would be required: the user would have to 
log out from the user's current account and re -log in, into the 
application, using a log in Id configured for a particular 
customer. This mechanism makes the process of adopting 
different customer identity quite cumbersome for the user. 
This mechanism also adds additional overhead for the 
application administrator to maintain a list of privileged 
users for all customer accounts. To solve the problem, a new 
60 process of adopting different customer identity is created. 
This new identity adoption process allows a user to select a 
customer from a customer list and immediately adopt the 
new identity without compromising the user authentication 
process of the SD application. 
65 According to the invention the application maintains a list 
of users. For each user the application stores a user Id, a user 
password, a user type, and customer name. The value of 
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User Type in the SD application is one of " internal", 
"external" or "System Admin". The application also stores a 
list of customers. "Internal" user type allows a user to have 
privileged access to information of all customers. "External" 
user type restricts a user to access only its assigned customer 
data. "System Admin" gives a user authority to configure the 
system. 

The SD application upon receiving a request to display a 
"Welcome" page, initiates a presentation process to check if 
the current user's user type is of type "internal". If the user 
type is "internal" then it returns a HTML page that displays 
a "Switch Customer Account" presenting the list of custom- 
ers for the user that are of user type as "internal" else it 
returns a HTML page without this "Switch Customer 
Account" capability. 

When the user selects a customer name from the list of 35 
customer names, a CGI process is called passing the selected 
customer name as a parameter. The CGI process then 
updates the user's customer name attribute to the selected 
customer name. The user has assumed the identity of the 



selected customer. All subsequent requests from the user's 20 resentatives (CSRs). 



On the other hand, the daemon process creates a time- 
stamped backup of the shared memory at system startup 
time. It is done by making a copy of the latest backup file 
and renaming it with a timestamp. The reason is to archive 
S and preserve the configuration of the system before every 
startup of the Service Director. 

The shared memory is simply RAM that is used because 
access to a non-volatile storage device such as a hard drive 
is relatively slow. The fundamental idea is to read, in 
10 snapshot format from archive, into the shared memory and 
to write back again periodically. 

A flow chart showing the backup procedure is given in 
FIG. 16. 

The CSM system provides customers of a service pro- 
vider with a web-based access to manage the communica- 
tions related services they receive from the service provider. 
It is advantageous for the service provider who may then 
re-sell the management capability to their customers or may 
use it internally as a tool for their Customer Service Rep- 



browser are now associated with the customer name of this 
user's customer name stored by the SD application. 

FIG. 13 shows an internal user's welcome frame. A pull 
down menu contains a list of all the customers that may be 
accessed by the internal user. 

FIG. 14 represents the welcome frame for an external 
user. In this frame the pull down customer list menu is 
missing. Subsequent frames for both type of user are the 
same. 

FIG. 15 is a flow chart of the process for context switching 
to a customer account. 

Another aspect of the present invention relates to the 
previously discussed use of shared memory. 

Unlike the Newbridge 46020 management system, the 
CSM Service Director provides network management in the 
context of network services. Hence there is a need to store 
extra information other then that which is extracted from the 
46020, such as user and customer profile. With a predefined 
nominal capacity of housing 500 customers and 1000 users, 
the cost of maintaining another separate database in addition 
to the one of CSM Agents is difficult to justify. The natural 40 
solution to this type of situation will usually be to store this 
additional information on disk file. 

However, the Web/CGI mechanism has already imposed 



The management capabilities of the system include the 
ability to perform performance and configuration manage- 
ment on services provided by the service provider, in 
particular, on the access ports and virtual circuits of the 
25 communications network assigned to a particular subscriber 
or customer. For example, the CSM system may be used by 
service end-users as a means to access information relating 
to their FR and ATM PVC and UNI services. 

While particular aspects and embodiments of the inven- 
tion have been described and illustrated it will be apparent 
to one skilled in the art that numerous alternatives and 
variations can be implemented. It is to be understood, 
however, that such alternatives and variations will fall 
within the scope of the invention as defined by the appended 
claims. 
Glossary 

The following definitions clarify terms used in the fore- 
going description and are presented here for the convenience 
of the reader. 

ATM Asynchronous Transfer Mode. A switching/ 
transmission technology which employs 53 byte cells as a 
basic unit of transfer. The ATM Cell is divided into 5 bytes 
of ATM Layer overhead and 48 bytes of ATM payload, ATM 
is fundamentally statistical in nature, with many "virtual 
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35 



a significant load on the Service Director's performance; 

adding the file I/O bottle-neck is undesirable, especially in 45 circuits" sharing bandwidth, 
a concurrent system. ASCII American Standard Code for Information Inter- 

To optimize the performance, instead of storing the infor- change, 
mation onto the disk directly, Service Director writes the CGI Common Gateway Interface. A standard for inter- 
information into shared memory, and then updates the facing external applications with information servers, such 
information to the disk periodically using a background 50 as HTTP or Web servers. A CGI program is executed in 
control process. real-time, so that it can output dynamic information. 

At the start up of the Service Director server, shared CSM Agent Customer Service Management Agent. CSM 

memory space is allocated and initialized by a daemon Agent accesses information from 46020 databases and pro- 
process. A handle to the shared memory is created and saved vides users with statistics, configuration and fault informa- 
to a file. Server processes of user requests will look for that 55 tion for the frame relay objects in their VSNs. Users access 



handle in order to access the shared memory. The structure 
and space requirement of the shared memory is also pre- 
defined. When a user's action requires access to the shared 
memory, the corresponding server process will use the 
structure definition as a map to access the shared memory 
space. 

A separate background process is responsible for backing 
up the content of the shared memory. The process periodi- 
cally updates the content to a backup file at a user-defined 



the information from the CSM Agent through a Customer 
NMS running a third party SNMP management application, 
such as HP OpenView. 

CSR Customer Service Representative. A person working 
60 for a service provider to assist its customers. 

Customer An organization that purchases network ser- 
vices in the form of a partition from a service provider. 

FR Frame Relay. A data transmission technique that 
combines the high speed and Low delay of circuit switching 



time interval. The backup file is used in system recovery and 65 with the port sharing and dynamic bandwidth allocation 
restart. The backup file is also updated right before system capabilities of X.25 packet switching. Like X.25, frame 
shutdown, relay divides transmission bandwidth into numerous virtual 
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circuits and allows for bursts of data. But unlike X.25, frame 3. A system as defined in claim 2 wherein currently 

relay does not require a lot of processing at each node, displayed performance report information on a screen at said 

delegating error correction and flow control to the attached weD browser is continually stored in temporary storage 

user devices. under a temporary file name in a hidden field in a generated 

FRL Frame Relay Link. A series of connections between s HTML page, said performance report information being 

two frame relay sources or matching circuits. Source , or- Kma ^ to sajd ^ direc , or ^ and s(ored in a 

cuits are the ingress points for frame relay (e.g., Tl DS-Os, . C1 , 

Data ports). Switching circuits are Frame Stream Circuits on P™*™* file ™ der a pennanen file name in response to a 

Frame Relay Switch and/or Frame Relay Engine Cards. request by one of said customers to export said performance 

FRP Frame Relay Path. An end-to-end logical frame relay in rc P° rt information, 

connection. Equivalent to a Permanent Virtual Circuit FRPs 10 4 A svstem as defined in claim 3 wherein said temporary 

exclusively use FRLs. file 1S deleted upon logging out. 

MIB Management Information Base. A collection of 5. A system as defined in claim 3 wherein current date and 

objects that can be accessed via a network management lime information is included in said permanent file name, 

protocol. 6- An Internet-based customer services management sys- 

OID Object Identifier. A unique identifier for a particular 15 tern as defined in claim 1 wherein said report storage means 

object type in a MEB. The value associated with the OID is includes means to automatically store said display data in a 

hierarchical and so its naming convention also serves to temporary memory under a temporary file name at said 

identify the structure of object types. service director server. 

PVC Permanent Virtual Circuit. An end-to-end logical 7. An Internet-based customer services management sys- 

connection. 20 ( em ^ defined in claim 6 wherein said report storage means 

RFS Release Functional Specification. A Contract includes means to store said data in a permanent memory in 

between Engineering and the Business Units concerning the a directory in said service director server in response to a 

functionality for a particular release of a product. The line st b a customer through said web browser, 

items of the RFS are later expanded by detailed functional 8 M Internet . based cust omer services management sys- 

Sp tfA o at i 0nS ' r» • kt • . j n , , 1 , •» 25 tem for use with a digital communications network com- 

SD Software Design. Newbridge R&D document detail- risine- 

ing the high level design of a software subsystem. p e * 

Service Provider The owner of a partitioned network. a network management system for logically partitioning 

Service User An owner of a user account within a cus- resources of said digital communications network to 

tomer or service provider organization. 3Q form one or more virtual private networks, the 

SNMP Simple Network Management Protocol A stan- resources of each virtual private network being allo- 

dard for the management of entities in a TCP/IP local area ca t e d to respective customers; 

ne V^H'T vt txr^ .^c * a service director that communicates with the network 

UNI User Network Interface. The interlace used to con- 4 » j4 . t. i* »_ • j 

' , management system and through which said customers 

nect user equipment to network equipment. * • 1 * j ■ r 7- • • 

TT a * * «; u * t r^cxA o • is access service related information respecting their vir- 

User Account A Web access account of CSM Service -» r & 

Director. A user account is associated with an individual tual P nvate network i and 

within a customer or service provider organization. A cus- a server associated with said service director, said server 

tomer may have multiple user accounts. being accessible by a web browser enabling respective 

VSN Virtual Service Network. A form of a partition which customers to access said service related information 

may contain path end equipment only. Bandwidth is drawn 40 respecting their virtual private network, 

from the 'parent' partition which must be a VBN or the 9. An Internet-based customer services management sys- 

' Supply Network*. The service user sees a physical view of tem as defined in claim 8 for use in a multi-technology 

path end network equipment and a logical view of connected digital communication network wherein said resources are 

paths. partitioned into a plurality of VPNs made up of virtual 

What is claimed is: 45 backbone networks (VBNS) and virtual service networks 

1. An Internet-based customer services management sys- (VSNs). 

tem for use in a multi-technology digital communication 10. An Internet-based customer services management as 
network comprising: a network management system for defined in claim 9 wherein said respective customers are 
logically partitioning resources of said multi-technology customers of a service provider of said service multi- 
digital communications network to form one or more virtual 50 technology digital communication network, 
private networks, the resources of each virtual private net- 11. An Internet-based customer services management 
work being allocated to respective customers; a service system as defined in claim 10 wherein one of said respective 
director that communicates with the network management customers is an administrator of said service provider, 
system and through which said customers access service 12. An Internet -based customer services managemnent 
information respecting their virtual private network; a ser- 55 system as defined in claim 8 wherein said server includes a 
vice director server having a relational database and means relational database. 

to access said network management system for retrieving 13. An Internet-based customer services management 

configuration information therefrom and storing said con- system as defined in claim 12 wherein said relational data 

figuration information in said relational database; a web base is a customer services management agent having means 

browser having Internet-based access to said services direc- 60 to communicate with said services director, 

tor server, said web browser enabling one of said respective 14. An Internet-based customer services management 

customers to manipulate a virtual private network allocated system as defined in claim 13 wherein said means to 

thereto; and report storage means to store data displayed on communicate between said service director and said cus- 

a screen at said browser. tomer services management agent is a structure query lan- 

2. A system as defined in claim 1 wherein said data, 65 guage (SQL) interface. 

includes performance data respecting a virtual private net- 15. An Internet-based customers services management 

work. system as defined in claim 13 wherein said service infor 
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mation includes network configuration and network statis- 
tical information. 

16. An Internet-based customer services management 
system as defined in claim 13 wherein said service director 
server receives service management queries from respective 5 
customers, retrieves information from said customer ser- 
vices management agent and generates a graphical based 
response for display on said web browser. 

17. A method for the management of communications 
services from a service provider by a user comprising: 
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using a network management system for logically parti- 
tioning resources of said digital communications net- 
work to form one or more virtual private networks, 

providing each user with a browser, and 

maintaining a relational database for storing specific 
information retrieved from said network management 
system via said browser and said virtual private net- 
work. 

***** 
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